The WSS
1.1 Username Token Profile allows digest passwords to be sent in
a wsse:UsernameToken of a SOAP message. Two more optional elements
are included in the wsse:UsernameToken in this case: wsse:Nonce and
wsse:Created. A nonce is a random value that the sender creates to
include in each UsernameToken that it sends. A creation time is added
to combine nonces to a “freshness” time period. The
Password Digest in this case is calculated as:

Tooling support for Hash Password will come with the 1.3 release of
Metro.

Availability of Security Token Assertion parameters like
Issuer, IssuerName and Claims to end users

SecurityPolicy 1.2 spec allows a token
assertion to carry optional sp:Issuer or sp:IssuerName elements and
wst:Claims element. In the earlier version, these elements were only
allowed for an IssuedToken assertion. We make this information
available in com.sun.xml.wss.TokenPolicyMetaData class, and it can be
used ,for example, in a CallbackHandler. Here is a code snippet:

The tutorial does not tell me how to set the content of the "wst:Claims" element and I could not find any option in Netbeans which allow me to set it. I am using Netbeans 6.7 Beta, JDK 1.6, Metro 1.5, Glassfish 2.1.

I just wonder if you can show me how to set the content of the "wst:Claims" element?